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What: Ts Claimpri Ts: 



1. In a protocol for cryptographic communication via a 
communication channel "I" in which a sending cryptographic unit "S" 
transmits onto the communication channel I an encrypted cyphertext 
message "M M obtained by supplying both a plaintext message "P" and 
5 a cryptographic key "K" to a first cryptographic device, and in 
if* which a receiving cryptographic unit "R" receives the cyphertext 

m 

in message M from the communication channel I and by supplying the 
fjj cyphertext message M together with the key K to a second 

ru 

cryptographic device decrypts the plaintext message P therefrom, a 
JUlO method by which the units S and R mutually establish a 
cryptographic key K by first exchanging messages before the sending 

ij 

unit S transmits the cyphertext message M comprising the steps of: 

P 

O a. the receiving unit R transmitting for storage in a 

publicly accessible repository a plurality of public 
15 quantities; 

b. the sending unit S: 

i. retrieving the plurality of public guantities from 
the publicly accessible repository; 

ii. using at least some of the plurality of public 
2 0 quantities, computing and transmitting to the 

receiving unit R a plurality of sender's 
quantities; and 
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iii. using at least one of the plurality of public 
quantities, computing the key K; and 
25 c. the receiving unit R, using at least one of the plurality 

of sender's quantities received from the sending unit S 
computing the key K. 

2. The method of claim 1 wherein the receiving unit R, in 
storing the plurality of public quantities into the publicly 
accessible repository: 

i. selects at least one receiver's secret quantity; 

ii. selects for storage in the publicly accessible 
repository as part of the plurality of public 
quantities at least one selected public quantity; 
and 

iii. using the receiver's secret quantity and the at 
least one selected public quantity, computes and 
stores in the publicly accessible repository as 
part of the plurality of public quantities a 
plurality of computed public quantities. 

3. The method of claim 2 wherein the plurality of public 
quantities include a plurality of vectors. 

4. The method of claim 2 wherein the at least one selected 
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public quantity includes a vector. 

5. The method of claim 2 wherein the plurality of computed 
public quantities include a plurality of vectors. 

6. . The method of claim 2 wherein the sending unit S, in 
computing the plurality of sender's quantities for transmission to 
the receiving unit R: 

i. selects a sender's secret quantity; and . 

ii. using the sender's secret quantity and at least 
some of the retrieved plurality of public 
quantities, computes for transmission to the 
receiving unit R the plurality of sender's 
quantities. 

7. The method of claim 6 wherein the plurality of sender's 
quantities include a plurality of vectors. 

8. The method of claim 1 wherein the sending unit S, in 
computing the plurality of sender's quantities for transmission to 
the receiving unit R: 

i. selects a sender's secret quantity; and 

ii. using the sender's secret quantity and at least 
some of the retrieved plurality of public 
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quantities, computes for transmission to the 
receiving unit R the plurality of sender's 
quantities . 

9. The method of claim 8 wherein the plurality of sender's 
quantities include a plurality of vectors. 

£"*£ 

10. A system adapted for communicating as an encrypted 

} v * cyphertext message M a plaintext message P that has been encoded 

In 

fU using a cryptographic key K, the system comprising: 

RJ 

a. a communication channel I adapted for transmitting the 
p 5 cyphertext message M; 

□ b. a pair of transceivers that are coupled to said 

■rj communication channel I, and that are adapted for 

communicating the cyphertext message M from one 
transceiver to the other transceiver via said 
10 communication channel I; and 

c. a pair of cryptographic units each of which is 
respectively coupled to one of said transceivers for 
transmitting the cyphertext message M thereto or 
receiving the cyphertext message M therefrom, each 
15 cryptographic unit: 

i. when the cryptographic unit is to receive the 
cyphertext message M: 



- 28 - 



DOCKET NO. 2174 



(1) storing plurality of public quantities in a 
publicly accessible repository; 

(2) receiving via the communication channel I a 
plurality of sender's quantities from a 
sending cryptographic unit, and using at least 
one of the plurality of sender's quantities in 
computing the key K; and 

when the cryptographic unit is to send the 
cyphertext message M, retrieving the plurality of 
public quantities from the publicly accessible 
repository and using: 

(1) at least some of the plurality of public 
quantities in computing the plurality of 
sender's quantities which the sending 
cryptographic unit transmits via the 
communication channel I to the receiving 
cryptographic unit; and 

(2) at least one of the plurality of public 
quantities in computing the key K; and 

including a cryptographic device having: 

(1) a key input port for receiving the key K from 
the cryptographic unit; 

(2) a plaintext port: 

(a) for accepting the plaintext message P for 
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encryption into the cyphertext message M 
that is transmitted from the 
cryptographic device, and 
45 (b) for delivering the plaintext message P 

obtained by decrypting the cyphertext 
message M received by the cryptographic 
device ; and 

^ (3) a cyphertext port that is coupled to one of 

Cm 

W50 said transceivers: 

111 

fU (a) . for transmitting the cyphertext message M 

f 1 1 

yj to such transceiver, and 

(b) for receiving the cyphertext message M 
from such transceiver. 

11. The system of claim 10 wherein said cryptographic unit 
which receives the cyphertext message M in storing the plurality of 
public quantities into the publicly accessible repository: 

(a) selects at least one receiver's secret quantity; 
5 (b) selects for storage in the publicly accessible 

repository as part of the plurality of public 
quantities at least one selected public quantity; 
and 

(c) using the receiver's secret quantity and the at 
10 least one selected public quantity, computes and 



O 

O 
In 
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stores in the publicly accessible repository as 
part of the plurality of public quantities a 
plurality of computed public quantities. 

12. The system of claim 11 wherein the plurality of public 
quantities include a plurality of vectors. 

13. The system of claim 11 wherein the at least one selected 
public quantity includes a vector. 

14. The system of claim 11 wherein the plurality of computed 
public quantities include a plurality of vectors. 

15. The system of claim 11 wherein the sending cryptographic 
unit, in computing the plurality of sender's quantities for 
transmission to the receiving cryptographic unit:: 

i. selects a sender's secret quantity;; and 

ii. using the sender's secret quantity and at least 
some of the retrieved plurality of public 
quantities, computes for transmission to the 
receiving cryptographic unit the plurality of 
sender's quantities. 

16. The system of claim 15 wherein the plurality of sender's 
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quantities include a plurality of vectors, 

17. The system of claim 10 wherein the sending cryptographic 
unit, in computing the plurality of sender's quantities for 
transmission to the receiving cryptographic unit: 

i. selects a- sender's secret quantity;; and 
5 ii. using the sender's secret quantity and at least 

rl 

some of the retrieved plurality of public 

IP 

ill quantities, computes for transmission to the 

in 

f I j receiving cryptographic unit the plurality of 

iff I 

sender's quantities. 

18. The system of claim 17 wherein the plurality of sender's 
t!j quantities include a plurality of vectors. 

a 

19. A cryptographic unit adapted for inclusion in a system 
for communicating as an encrypted cyphertext message M a plaintext 
message P that has been encoded using a cryptographic key K, the 
system including: 

5 a. a communication channel I adapted for transmitting the 

cyphertext message M; and 
b. a pair of transceivers that are coupled to said 
communication channel I, and that are adapted for 
communicating the cyphertext message M from one 
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10 transceiver to the other transceiver via said 

communication channel I; 
the cryptographic unit being adapted for coupling to said 
transceivers for transmitting the cyphertext message M thereto or 
receiving the cyphertext message M therefrom, and comprising: 
15 a. ports: 

(% i. when the cryptographic unit is to receive the 

f cyphertext message M, for: 

(1) storing plurality of public quantities in a 
M-f publicly accessible repository; 

^42 0 (2) receiving via the communication channel I a 

P plurality of sender's quantities from a 

□ sending cryptographic unit, and using at least 

□ one of the plurality of sender's quantities in 

computing the key K; and 

25 ii. when the cryptographic unit is to send the 

cyphertext message M, for retrieving the plurality 
of public quantities from the publicly accessible 
repository and using: 

(1) at least some of the plurality of public 
3 0 quantities in computing the plurality of 

sender's quantities which the sending 
cryptographic unit transmits via the 
communication channel I to the receiving 
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cryptographic unit; and 
35 (2) at least one of the plurality of public 

quantities in computing the key K; and 
b. a cryptographic device having: 

i. a key input port for receiving the key K from the 
cryptographic unit; 

? 40 ii. a plaintext port: 

|J (1) for accepting the plaintext message P for 

Hi encryption into the cyphertext message M that 

1H is transmitted from the cryptographic device, 

and 

l*M5 (2) for delivering the plaintext message P 

'x'ssf 

p obtained by decrypting the cyphertext message 

Hi 

O M received by the cryptographic device; and 

ii. a cyphertext port that is coupled to one of said 
transceivers : 

50 (1) for transmitting the cyphertext message M to 

such transceiver, and 
(2) for receiving the cyphertext message M from 
such transceiver. 



20. The cryptographic unit of claim 19 wherein, when 
receiving the cyphertext message M, in storing the plurality of 
public quantities into the., publicly accessible repository: 
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(a) selects at least one receiver's secret quantity; 

(b) selects for storage in the publicly accessible 
repository as part of the plurality of public 
quantities at least one selected public quantity; 
and 

(c) using the receiver's secret quantity and the at 
least one selected public quantity, computes and 
stores in the publicly accessible repository as 
part of the plurality of public quantities a 
plurality of computed public quantities. 

21. The cryptographic unit of claim 20 wherein the plurality 
of public quantities include a plurality of vectors. 

22. The cryptographic unit of claim 2 0 wherein the at least 
one selected public quantity includes a vector. 

23. The cryptographic unit of claim 20 wherein the plurality 
of computed public quantities include a plurality of vectors. 

24. The cryptographic unit of claim 20, when sending the 
cyphertext message M, in computing the plurality of sender's 
quantities for transmission to the receiving cryptographic unit: 

i. selects a sender's secret quantity; and 
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ii. using the sender's secret quantity and at least 
some of the retrieved plurality of public 
quantities, computes for transmission to the 
receiving cryptographic unit the plurality of 
sender's quantities. 

25. The cryptographic unit of claim 24 wherein the plurality 
of sender's quantities include a plurality of vectors. 

26. The cryptographic unit of claim 19 wherein, when sending 
the cyphertext message M, in computing the plurality of sender's 
quantities for transmission to the receiving cryptographic unit: 

i. selects a sender's secret quantity; and 

ii. using the sender's secret quantity and at least 
some of the retrieved plurality of public 
quantities, computes for transmission to the 
receiving cryptographic unit the plurality of 
sender's quantities. 

27. The cryptographic unit of claim 26 wherein the plurality 
of sender's quantities include a plurality of vectors. 

28. In a protocol for communication in which a sending unit 
S transmits onto the communication channel I a message "M" together 
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with a digital signature, and, wherein before transmitting the 
message M and the digital signature, the sending unit S transmits 
for storage in a publicly accessible repository a plurality of 
public quantities, a method by which a receiving unit R that 
receives the message M and the digital signature verifies the 
authenticity of digital signature comprising the steps performed by 
the receiving unit R of : 

a. retrieving the plurality of public quantities from the 
publicly accessible repository; 

b. using the digital signature and the plurality of public 
quantities, evaluating expressions of at least two (2) different 
verification relationships; and 

c. comparing pairs of results obtained by evaluating the 
expressions of the at least two (2) different verification 
relationships . 

29. The method of claim 28 wherein the plurality of public 
quantities include a plurality of vectors. 



